Lucene search

Redhat.comRH:CVE-2016-6663

HistoryDec 15, 2016 - 8:18 p.m.

CVE-2016-6663

2016-12-1520:18:51

redhat.com

access.redhat.com

EPSS

0.003

Percentile

66.3%

JSON

A race condition was found in the way MySQL performed MyISAM engine table repair. A database user with shell access to the server running mysqld could use this flaw to change permissions of arbitrary files writable by the mysql system user.

References

bugzilla.redhat.com/show_bug.cgi?id=1378936

legalhackers.com/advisories/MySQL-Maria-Percona-PrivEscRace-CVE-2016-6663-5616-Exploit.txt

mariadbunix

CVE-2016-5616

2016-10-25 14:31:00

CVE-2016-6663

2016-12-13 21:59:00

prion

Design/Logic Flaw

2016-10-25 14:31:00

Race condition

2016-12-13 21:59:00

cve

CVE-2016-5616

2016-10-25 14:31:30

CVE-2016-6663

2016-12-13 21:59:00

ubuntucve

CVE-2016-6663

2016-12-13 00:00:00

nvd

CVE-2016-5616

2016-10-25 14:31:30

CVE-2016-6663

2016-12-13 21:59:00

openvas

RedHat Update for mysql RHSA-2017:0184-01

2017-01-25 00:00:00

CentOS Update for mysql CESA-2017:0184 centos6

2017-01-27 00:00:00

Oracle MySQL Server <= 5.5.51 / 5.6 <= 5.6.32 / 5.7 <= 5.7.14 Security Update (cpuoct2016) - Linux

2016-10-19 00:00:00

nessus

Amazon Linux AMI : mysql51 (ALAS-2017-800)

2017-02-23 00:00:00

Scientific Linux Security Update : mysql on SL6.x i386/x86_64 (20170124)

2017-01-25 00:00:00

RHEL 6 : mysql (RHSA-2017:0184)

2017-01-25 00:00:00

amazon

Important: mysql51

2017-02-22 18:00:00

redhat

(RHSA-2017:0184) Important: mysql security update

2017-01-24 10:49:30

(RHSA-2016:2595) Important: mariadb security and bug fix update

2016-11-03 06:07:15

(RHSA-2016:2131) Important: mariadb55-mariadb security update

2016-10-31 22:00:47

oraclelinux

mysql security update

2017-01-24 00:00:00

mariadb security and bug fix update

2016-11-09 00:00:00

centos

mysql security update

2017-01-26 22:35:43

mariadb security update

2016-11-25 16:00:08

exploitdb

MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'mysql' System User Privilege Escalation / Race Condition

2016-11-01 00:00:00

MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'root' System User Privilege Escalation

2016-11-01 00:00:00

MySQL / MariaDB / PerconaDB 5.5.51/5.6.32/5.7.14 - Code Execution / Privilege Escalation

2016-09-12 00:00:00

exploitpack

MySQL MariaDB PerconaDB 5.5.x5.6.x5.7.x - mysql System User Privilege Escalation Race Condition

2016-11-01 00:00:00

MySQL MariaDB PerconaDB 5.5.x5.6.x5.7.x - root System User Privilege Escalation

2016-11-01 00:00:00

MySQL MariaDB PerconaDB 5.5.515.6.325.7.14 - Code Execution Privilege Escalation

2016-09-12 00:00:00

threatpost

Critical MySQL Vulnerabilities Can Lead to Server Compromise

2016-11-02 14:02:10

Critical MySQL Vulnerability Disclosed

2016-09-12 11:00:58

osv

CGA-q2hg-2vjw-82pg

2024-07-04 22:10:35

cvelist

CVE-2016-5616

2016-10-25 14:00:00

CVE-2016-6663

2016-12-13 21:00:00

zdt

MySQL / MariaDB / PerconaDB - 'root' Privilege Escalation Vulnerability

2016-11-02 00:00:00

MySQL / MariaDB / PerconaDB - 'mysql' System User Privilege Escalation / Race Condition

2016-11-02 00:00:00

MySQL / MariaDB / PerconaDB 5.5.52 / 5.6.33 / 5.7.15 - Code Execution / Privilege Escalation

2016-09-12 00:00:00

packetstorm

MySQL / MariaDB / PerconaDB Privilege Escalation / Race Condition

2016-11-02 00:00:00

MySQL / MariaDB / PerconaDB Root Privilege Escalation

2016-11-02 00:00:00

MySQL 5.7.15 / 5.6.33 / 5.5.52 Remote Code Execution

2016-09-12 00:00:00

seebug

MySQL / MariaDB / PerconaDB 提权/条件竞争漏洞（CVE-2016-6663）

2016-11-02 00:00:00

MySQL / MariaDB / PerconaDB elevation of privilege vulnerability, CVE-2016-6664）

2016-11-02 00:00:00

MySQL <= 5.7.15 remote Root code execution vulnerability

2016-09-13 00:00:00

K73828041 : MySQL vulnerability CVE-2016-6663

2017-02-03 00:00:00

SOL13201415 - MySQL vulnerability CVE-2016-5616

2016-11-21 00:00:00

K13201415 : MySQL vulnerability CVE-2016-5616

2016-11-21 00:00:00

ibm

Security Bulletin: IBM Security Guardium Database Activity Monitor is affected by Open Source MySQL MySQL Vulnerabilities (CVE-2016-6663)

2018-06-16 21:48:33

Security Bulletin: Vulnerabilities in mariadb affect PowerKVM

2018-06-18 01:34:53

Security Bulletin: Multiple vulnerabilities in openssl, gnutl, mysql, kernel, glibc, ntp shipped with SmartCloud Entry Appliance

2020-07-19 00:49:12

veracode

Privilege Escalation

2019-05-02 05:51:01

Privilege Escalation

2019-01-15 09:15:26

myhack58

MySQL is now a high-risk vulnerability that can cause the server root permission is stealing-vulnerability warning-the black bar safety net

2016-11-05 00:00:00

Linux application permissions incorrectly can provide the right series vulnerability analysis-vulnerability warning-the black bar safety net

2016-11-29 00:00:00

altlinux

Security fix for the ALT Linux 8 package mariadb version 10.1.18-alt1

2016-10-25 00:00:00

thn

New MySQL Zero Days — Hacking Website Databases

2016-09-12 06:14:00

Critical Flaws in MySQL Give Hackers Root Access to Server (Exploits Released)

2016-11-02 21:16:00

archlinux

mariadb: multiple issues

2016-09-14 00:00:00

suse

Security update for mariadb (important)

2016-12-06 16:07:37

Security update for mariadb (important)

2016-11-28 20:07:13

2016-11-28 20:09:17

mageia

Updated mariadb packages fix security vulnerabilities

2016-11-10 00:43:03

debian

[SECURITY] [DSA 3711-1] mariadb-10.0 security update

2016-11-11 21:02:15

[SECURITY] [DSA 3711-1] mariadb-10.0 security update

2016-11-11 21:02:15

checkpoint_advisories

MySQL Remote Code Execution (CVE-2016-6662; CVE-2016-6663; CVE-2016-6664)

2016-09-20 00:00:00

slackware

[slackware-security] mariadb

2016-11-01 03:40:41

freebsd

MySQL -- multiple vulnerabilities

2016-09-13 00:00:00

fedora

[SECURITY] Fedora 24 Update: community-mysql-5.7.17-1.fc24

2016-12-27 22:49:07

[SECURITY] Fedora 25 Update: community-mysql-5.7.17-1.fc25

2016-12-27 15:52:21

oracle

Oracle Critical Patch Update - October 2016

2016-10-18 00:00:00

EPSS

0.003

Percentile

66.3%

JSON

CVE-2016-6663

References

Related